osCMax_security

 :: osCMax Security Update release 2.0 RC3.0.3 :: (6110 Reads)

Posted by msasek on Tuesday, January 27, 2009 - 05:39 AM

A security update for osCMax has been released. Version 2.0 RC3.0.3 patches a security hole found in one of the mods.

The mod in question is the Printable Catalog, and the flaw is found in all versions of Printable Catalog prior to the patch version 3.6 released today by the osCMax team.

There is a patch file that can be downloaded from the osCMax bugtracker The full osCMax package download and SVN have also been updated with the security fix.

Bug Tracker - Printable Catalog Bugfix

In addition the osCMax team has also posted a fixed version of Printable catalog at the osCommerce addon site that will work in standard osCommerce as well.

Printable Catalog XSS Fix v3.6 posted by msasek
Send this story to someone Printer-friendly page

Rating

Only logged in users are allowed to comment. register/log in